Cobalt Stike Beacon Detected – 179[.]43[.]142[.]47:10443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Year: 2022
Cobalt Stike Beacon Detected – 104[.]168[.]11[.]90:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 35[.]220[.]227[.]124:81
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 84[.]32[.]188[.]156:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 3[.]70[.]239[.]217:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]93[.]212[.]101:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 35[.]175[.]108[.]248:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cyber Insurance Policy Underwriting Explained
Cybersecurity insurance is a must have for organizations of any size. John Hennessy, RVP at Cowbell discusses cyber insurance policy...
Zombinder APK binding service used in multiple malware attacks
Zombinder is a third-party service on darknet used to embed malicious payloads in legitimate Android applications. While investigating a new...
CISA: CISA Releases Phishing Infographic
CISA Releases Phishing Infographic Today, CISA published a Phishing Infographic to help protect both organizations and individuals from successful phishing operations....
Pwn2Own Toronto 2022 Day 2: Participants earned $281K
Pwn2Own Toronto 2022 Day Two – Participants demonstrated exploits for smart speaker, smartphone, printer, router, and NAS. On the first...
BlackCat/ALPHV Ransomware Victim: Warren County Community College
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Malware Analysis – – d80cdb5a52e2f47dbd3ef4c8f43bcc13
Score: 1 MALWARE FAMILY: TAGS:MD5: d80cdb5a52e2f47dbd3ef4c8f43bcc13SHA1: 69a95fe11c575f0ec77958e0becd197c26df1e3cANALYSIS DATE: 2022-12-04T20:22:24ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – e85430e72cb7ede842d91ce17c95f7c0
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, upxMD5: e85430e72cb7ede842d91ce17c95f7c0SHA1: c46fca8347141624501ee133d34e617609677debANALYSIS DATE: 2022-12-04T20:40:08ZTTPS: T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – evasion – e592bcc16c6a003632860526f0b88da4
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, spyware, stealer, trojanMD5: e592bcc16c6a003632860526f0b88da4SHA1: 0c4893f1d0cb53d45da865c52fa42bf4c50d3e1fANALYSIS DATE: 2022-12-04T20:39:49ZTTPS: T1082, T1012, T1060, T1112, T1158, T1088,...
Malware Analysis – collection – 7ed40a195807b97cd4c4e1165852e3fc
Score: 9 MALWARE FAMILY: collectionTAGS:collection, evasion, persistence, ransomware, trojanMD5: 7ed40a195807b97cd4c4e1165852e3fcSHA1: 926faad662a9b4a431afa8eba74b75f839613153ANALYSIS DATE: 2022-12-04T21:08:07ZTTPS: T1060, T1112, T1107, T1490, T1082, T1114 ScoreMeaningExample10Known...
Malware Analysis – ransomware – 47b263d65779c518a1fdb3d6cb9069b3
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 47b263d65779c518a1fdb3d6cb9069b3SHA1: c0216f6785b9ded9e054bb5fb98a08604d2a0bc9ANALYSIS DATE: 2022-12-04T21:14:29ZTTPS: T1082, T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – ransomware – edfec710027e745173b2720cc3ff5b5f
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: edfec710027e745173b2720cc3ff5b5fSHA1: d8f73eaac385ae73a13b504b9cf3aa94df63e22fANALYSIS DATE: 2022-12-04T20:40:17ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – bootkit – a61feb0a318c12f8fe9345f0d02617f0
Score: 8 MALWARE FAMILY: bootkitTAGS:bootkit, discovery, exploit, persistenceMD5: a61feb0a318c12f8fe9345f0d02617f0SHA1: 4c927ecb6e5062f5f4f27301724a3931adcc7e1fANALYSIS DATE: 2022-12-04T20:51:49ZTTPS: T1067, T1112, T1130, T1082, T1222 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – 03b9448171605dbc7f5954821007cd12
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:raccoon, family:smokeloader, family:vidar, botnet:517, botnet:ec7a54fb6492ff3a52d09504b8ecf082, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 03b9448171605dbc7f5954821007cd12SHA1: d6ce35fdbe1b6dc08f311f907c9caa4a5b578ea3ANALYSIS...
Malware Analysis – djvu – cb52c98edd0d30a565911adda8da6d65
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, backdoor, collection, discovery, persistence, ransomware, trojanMD5: cb52c98edd0d30a565911adda8da6d65SHA1: 8f2ed797c15eed64a2bd7dbfe3d024308e4b1e7eANALYSIS DATE: 2022-12-08T15:31:22ZTTPS: T1012, T1082, T1120, T1114,...
Malware Analysis – evasion – b99fac5cbf120d27ed5fcf3c3e1ea890
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: b99fac5cbf120d27ed5fcf3c3e1ea890SHA1: 15c2258fd304a14e6980a17755d598c67fa97a33ANALYSIS DATE: 2022-12-08T16:38:11ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – 55379623a834db376d34ba13fd2f0b67
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 55379623a834db376d34ba13fd2f0b67SHA1: e189b76fb2fa54cab0aa7146a636310e9189c2d9ANALYSIS DATE: 2022-12-08T16:38:06ZTTPS: T1060, T1112, T1222, T1082, T1012 ScoreMeaningExample10Known badA malware...
CISA: CISA Releases Three Industrial Control Advisories
CISA Releases Three Industrial Control Advisories CISA has released three (3) Industrial Control Systems (ICS) advisories on 08 December 2022....
